The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
We haven't been entirely consistent about adding python docstrings to every
function, and I'd like to start improving the codebase. I'm filing separate
tickets for each file I want updated so GSoC folk can claim them more easily --
please do not claim more than one of these issues; they are intended for
beginners to get their first commit.
What is a docstring?
Here's a tutorial on
docstrings in case
you're not sure what they are. Basically I want someone to write a short
sentence explaining what a function does and have it put at the top of the
function in the way that python expects docstrings to look. (You can also do
classes and methods.) Among other things, docstrings can be used by integrated
development environments (IDEs) to give contributors a quick overview of the
function without having to read the code.
This issue
This issue is for updating the file listed in the title of the issue: cve_bin_tool/strings.py
We are using interrogate (a tool for checking docstrings) as follows:
interrogate -vv -i -I -M -C -n -p cve_bin_tool/strings.py
You can run that locally to see if you're done, but we also recommend using
pre-commit to run pre-checks for you before submitting a pull request.
Instructions here:
cve-bin-tool uses https://www.conventionalcommits.org/ style for commit messages, and we have a test that checks the title of your pull request (PR). A good potential title for this one is in the title of this issue.
You can make an issue auto close by including a comment "fixes #ISSUENUMBER" in your PR comments where ISSUENUMBER is the actual number of the issue. This "links" the issue to the pull request.
Claiming issues:
You do not need to have an issue assigned to you before you work on it. To "claim" an issue either make a linked pull request or comment on the issue saying you'll be working on it.
If someone else has already commented or opened a pull request, assume it is claimed and find another issue to work on.
If it's been more than 1 week without progress, you can ask in a comment if the claimant is still working on it before claiming it yourself (give them at least 3 days to respond before assuming they have moved on).
inosmeet
commented
9 months ago
We haven't been entirely consistent about adding python docstrings to every function, and I'd like to start improving the codebase. I'm filing separate tickets for each file I want updated so GSoC folk can claim them more easily -- please do not claim more than one of these issues; they are intended for beginners to get their first commit.
What is a docstring?
Here's a tutorial on docstrings in case you're not sure what they are. Basically I want someone to write a short sentence explaining what a function does and have it put at the top of the function in the way that python expects docstrings to look. (You can also do classes and methods.) Among other things, docstrings can be used by integrated development environments (IDEs) to give contributors a quick overview of the function without having to read the code.
This issue
This issue is for updating the file listed in the title of the issue: cve_bin_tool/strings.py
We are using
interrogate(a tool for checking docstrings) as follows:interrogate -vv -i -I -M -C -n -p cve_bin_tool/strings.pyYou can run that locally to see if you're done, but we also recommend using pre-commit to run pre-checks for you before submitting a pull request. Instructions here:
https://cve-bin-tool.readthedocs.io/en/latest/CONTRIBUTING.html#using-pre-commit-to-run-linters-automatically
Or in short, go to the main cve-bin-tool directory and run the following:
Short tips for new contributors:
Claiming issues: